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Top Stories 

• The financial services industry saw nearly triple the number of distributed denial-of-service 
attacks during the first 3 months of 2012 compared to the same period in 201 1, a new 
report found. - IDG News Service (See item 19 ) 

• A multistate outbreak of Salmonella Bareilly expanded to include at least 116 victims 
across 20 states, according to new data. - Food Safety News (See item 28 ) 

• The Food and Drug Administration called on drug companies to help limit the use of 
antibiotics in farm animals, a decades-old practice scientists say contributed to a surge in 
dangerous, drug-resistant bacteria. - Associated Press (See item 39 ) 

• A fire atop English Mountain, in Sevierville, Tennessee, that destroyed four dozen 
condominiums was being fought with a helicopter ferrying loads of water. - Knoxville 
News Sentinel (See item 57) 
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Energy Sector 



Current Electricity Sector Threat Alert Levels: Physical: LOW, Cyber: LOW 

Scale: LOW, GUARDED, ELEVATED, HIGH, SEVERE [Source: ISAC for the Electricity Sector (ES-ISAC) - 
rhttp://www.esisac.coml 



1. April 12, Louisville Courier-Journal - (Kentucky) LG&E to pay $22,500 for coal ash 
drifting from Cane Run plant. Louisville Gas and Electric Co. (LG&E) agreed to pay 
$22,500 to settle a simmering dispute over coal ash blowing from its Cane Run power 
plant, the Louisville Courier- Journal reported April 12. Louisville Metro Air Pollution 
Control District officials originally sought as much as $30,000 in penalties, but a 
district spokesman said officials agreed to a lower fine after LG&E said it would take 
steps to control the ash. A spokesman said the firm already took action to reduce 
blowing ash and dust, including more frequent watering, reducing traffic on company 
roads, and adding more cover soil and grass to an ash and scrubber waste dump piling 
up for decades on the eastern bank of the Ohio River. LG&E will pay $19,500 in fines 
and $3,000 to a district clean-air fund. The spokesman said the firm also agreed to 
hourly visibility surveys and prompt responses to curtail ash releases into the air. By 
the end of April, LG&E must propose a plan for dust suppression for open areas of the 
ash dump. 

Source: http://www.courier-iournal.com/article/20120411/BUSINESS/304110064/LG- 

E-pav-22-500-coal-ash-drifting-from-Cane-Run- 

plant?odyssev=modlnewswellltextlHomels 

2. April 12, Associated Press - (Louisiana) Coast Guard checks Shell report of Gulf oil 
slick. The U.S. Coast Guard was checking reports April 12 of a 10-mile oil sheen in the 
Gulf of Mexico near wells operated by Shell Oil. A helicopter with a pollution officer 
on board was sent to determine the source of the oil, a Coast Guard Petty Officer in 
New Orleans said. Royal Dutch Shell reported a “light sheen” of oil about 1 mile long 
and 10 miles wide in the general area of two of its production platforms in the oil and 
gas prospects called Mars and Ursa. The company said the source of the sheen is 
unknown but it had no indication the sheen originated from its wells, about 130 miles 
southeast of New Orleans. 

Source: http://www.foxnews.eom/us/2012/04/l 2/coast-guard-checks-shell-report-gulf- 
oil-slick/ 

[ Return to top ] 

Chemical Industry Sector 

3. April 12, Beaumont Enterprise - (Texas) TCEQ fines Port Arthur chemical 
plant. State environmental regulators fined a Port Arthur, Texas chemical plant 
$46,450 because incorrect drain and valve settings, an incorrectly routed line, and an 
improperly repaired pump caused 2 incidents resulting in more than 1 10 total hours of 
air pollution. The Texas Commission on Environmental Quality (TCEQ) April 11 
approved penalties that totaled $240,228 against 25 regulated entities — two in 
Southeast Texas — for violations of state environmental regulations. Drain, valve, and 
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vapor line issues at Flint Hill Resources in Port Arthur April 26, 2011, led to the release 
of 4,875.5 pounds of volatile organic compounds over 30 hours, according to the 
TCEQ’s executive summary. It said May 23, 2011 an improperly repaired pump failed, 
leading to fire that resulted in the 80-hour long release of 15,590.25 pounds of volatile 
organic compounds. The TCEQ also fined ONEOK Hydrocarbon Southwest $9,650 for 
the release of about 8,800 pounds of volatile organic compounds at its Mount Belvieu 
Fractionator. 

Source: http://www.beaumontenterprise.com/news/article/TCEQ-fines-Port-Arthur- 
chemical-plant-3475228.php 

4. April 12, Albany Times Union - (New York) 10M to clean PCBs from Dewey Loeffel 
dump. General Electric Co. and chemical company SI Group will pay up to $10 
million to clean toxic polychlorinated biphenyls (PCBs) leaking for decades from the 
Dewey Loeffel landfill in Rensselaer County, New York, the U.S. Environmental 
Protection Agency (EPA) announced April 11. The agreement was hailed by local 
officials and grassroots groups that have pushed to clean a dump that has leaked since 
the 1950s and tainted water in Rensselaer and Columbia counties. The companies 
agreed to build and run a chemical treatment plant to remove PCBs and other chemicals 
from a spreading underground plume. They will also take over EPA’s job of running an 
inadequate state-built system that removes chemicals from the plume for treatment 
elsewhere until the new facility is running. An EPA regional administrator said the 
agency determined treating contaminated groundwater and liquid at the site is an 
effective way to protect drinking water wells. She said GE and SI Group, the former 
Schenectady International based in Niskayuna, also agreed to reimburse EPA for about 
$800,000 in costs since the agency took responsibility for the dump from the state a 
year ago. An EPA spokeswoman said GE and SI could spend up to $10 million for the 
new plant, the expense of running the existing groundwater system, and 
reimbursement. She said the new treatment plant could be ready by winter. Located 
about 4 miles northeast of the village of Nassau, the 16-acre unlined dump contains 
about 46,000 pounds of PCBs, solvents and other toxic chemicals illegally dumped 
from GE, the former Schenectady International and Bendix from 1952 to 1970, when 
the dump was closed by court order. 

Source: http://www.timesunion.com/business/article/10M-to-clean-PCBs-from-Dewey- 
Loeffel-dump-3474527.php 

5. April 11, KTRK 13 Houston - (Texas) Freeport residents to be tested for chemical 
exposure. Hundreds of Freeport, Texas residents were told the state would like to test 
them for potentially dangerous metal exposure, KTRK 13 Houston reported April 11. 
Health officials want to find out whether people who live near Gulf Chemical were 
exposed to chemicals that can cause cancer. They went door-to-door April 1 1 passing 
out letters offering tests to determine if residents were exposed to cobalt, molybdenum, 
and nickel. The chemicals were found in the air and soil. Officials at Gulf Chemical 
and Metallurgical Corporation admit they produce the metals as a byproduct of their 
operation. A company executive said in 2010 the firm pleaded guilty to 1 1 felony 
charges related to violations of the Clean Water Act, paying a $2.5 million fine. State 
health officials said the testing will occur May 3 to 6 at the Freeport Historical 
Museum. They said residents could pick up urine collection cups with sample 
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collection instructions at the clinic and can drop off their urine samples for testing. 
Source: http://abclocal.go.com/ktrk/storv?section=news/local&id=8617171 



[ Return to top ] 

Nuclear Reactors, Materials and Waste Sector 

6. April 12, Reuters - (Mississippi) Entergy Miss. Grand Gulf puts out fire in 
condenser. Entergy Corp. extinguished a fire in the main condenser of its 1,251- 
megawatt Grand Gulf nuclear power plant near Port Gibson, Mississippi, April 11, the 
company told the U.S. Nuclear Regulatory Commission (NRC) in a report posted April 
12. The unit has been on a planned refueling outage since February 20. The operators at 
the plant declared an “unusual event,” the lowest of four emergency classifications by 
the NRC, after the fire was discovered. It was put out in about 40 minutes. The cause of 
the fire was being investigated, the company said. 

Source: http://www.reuters.com/article/2012/04/12/utilities-operations-entergy- 
grandgulf-idUSL2E8FC 1 XW20 120412 

7. April 12, Brattleboro Reformer - (Vermont) More repairs made to VY’s 
condenser. Power output at the Vermont Yankee nuclear power plant near Brattleboro, 
Vermont, was reduced earlier the week of April 9 to allow for repairs to the plant’s 
steam condenser. April 1 1 the plant was running at 34 percent but on its way back up to 
full power, said the director of communications for Vermont Yankee. In the past few 
years, the condenser developed small leaks, in which water from the tubes leaked into 
the system. Holes in the condenser were sealed with Plasticor, an epoxy-like material, 
according to a member of the public oversight panel. The panel identified the 
condenser as a significant challenge to the continued reliability of the plant, partially as 
a result of the increased flow due to a power uprate in 2006. 

Source: http://www.reformer.com/localnews/ci 2037737 1/more -repairs-made-vy- 
rsquo-s-condenser 

8. April 11, Market Watch - (Virginia) NRC flags incident at Dominion nuclear 
plant. Federal inspectors found shortcomings with equipment replacement at the 
Dominion’s North Anna nuclear power plant in Fouisa County, Virginia, after an 
August 2011 earthquake forced it to shut down. The Nuclear Regulatory Commission 
(NRC) said April 11 it will discuss a violation of the plant’s technical specifications 
with Dominion officials April 20 before deciding how to proceed. Inspectors flagged 
the plant after finding a gasket failure prevented one of its emergency diesel generators 
from working properly. Workers replaced the gasket the same day, but the NRC said 
Dominion did not have adequate procedures for installing the part. It said the 
significance of the deficiency was “greater than green” on its color-coded safety scale. 
The NRC had not yet determined the event’s actual significance, however. 

Source: http://www.marketwatch.com/storv/nrc-flags-incident-at-dominion-nuclear- 
plant-20 12-04- 11 

[ Return to top ] 
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Critical Manufacturing Sector 



9. April 12, U.S. Department of Labor - (Georgia) Georgia facility of Chicago-based 
LKQ Corp. cited by US Department of Labor’s OSHA for willful and serious 
violations following worker injury. The U.S. Department of Labor’s Occupational 
Safety and Health Administration (OSHA) April 12 cited Don Park USA L.P. for 16 
safety and health violations based on a follow-up inspection of its Conley, Georgia 
facility. The OSHA found the same violations as during the original inspection, which 
was conducted after a fatality occurred at the facility in October 2010. Four repeat 
safety violations and one repeat health violation were cited, as well as four serious and 
one less-than-serious safety violations. 

Source: 

http://www.osha.gov/pls/oshaweb/owadisp.show document?p table=NEWS RELEAS 
ES&p id=22152 

10. April 12, U.S. Department of Transportation - (National) NHTSA recall notice - 
Buick Enclave, Chevrolet Traverse, and GMC Arcadia windshield wiper 
linkages. General Motors (GM), April 12 announced the recall of 50,001 model year 
201 1-2012 Chevrolet Traverse, Buick Enclave, and GMC Arcadia vehicles currently 
registered in 28 states and the District of Columbia. If snow or ice buildup on the 
windshield or on the wiper restricts the movement of the wiper arm, the wiper arm may 
loosen and cause the wiper to become inoperative. If this occurs, driver visibility could 
be reduced, increasing the risk of a crash. GM will notify owners, and dealers will 
tighten the wiper arm nuts. 

Source: http://www- 

odi.nhtsa.dot.gov/recalls/recallresults.cfm?start=l&SearchType=QuickSearch&rcl ID= 
1 2V 151 000&summary=true&prod id=97 1 774&PrintV ersion=YES 

11. April 12, Seattle Weekly - (Washington; International) Anonymous hackers attack 
Boeing website to protest CISPA; Is Microsoft next? Boeing’s Web site was the 
target of an attack staged by the hacking collective Anonymous, April 10, part of a 
widespread hacktivism campaign against companies and trade groups that support the 
Cyber Intelligence Sharing and Protection Act (CISPA). The Twitter account 
@YourAnonNews posted April 10 announcing that Boeing.com was down as part of 
Anonymous’ “OpDefense” campaign. Boeing’s Web site was reportedly offline for 
about 3 hours, and still was not working properly as of early April 11. Anonymous also 
managed to take down the Web sites of TechAmerica and USTelecom, tech industry 
trade groups that have lobbied in favor of CISPA. 

Source: 

http://blogs.seattleweeklv.com/dailvweeklv/2012/04/anonymous hackers attack boein 

Jhp 

12. April 11, U.S. Department of Labor - (Ohio) US Department of Labor’s OSHA cites 
Knowlton Manufacturing in Cincinnati after worker’s arm is amputated by 
mechanical power press. The U.S. Department of Labor’s Occupational Safety and 
Health Administration (OSHA) April 11 cited Knowlton Manufacturing Co. Inc. in 
Cincinnati with 10 safety violations — including three willful and one repeat — after an 
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employee’s arm was amputated November 12, 2011, while the individual was 
performing maintenance on a mechanical power press that did not have its energy 
source properly secured. Additionally, six serious violations were also cited. Due to the 
willful and repeat violations and the nature of the hazards, the OSHA placed Knowlton 
Manufacturing in its Severe Violator Enforcement Program, which mandates targeted 
follow-up inspections to ensure compliance with the law. 

Source: 

http://www.osha.gov/pls/oshaweb/owadisp.show document?p table=NEWS RELEAS 
ES&p id=22146 

13. April 11, Buffalo News - (New York) Fire at metal plant leaves coating of soot. A 
fire April 1 1 at a metal manufacturing plant in the Black Rock section of Buffalo, New 
York, released soot into the air, leaving residue on vehicles and buildings in the area, 
according to the New York Department of Environmental Conservation (DEC). The 
blaze happened at Aurubis Buffalo, and the material released was soot, or inert carbon, 
the DEC said. The agency sent staff from its spills and air resources divisions to the 
scene to assess the situation. “No significant environmental impacts are anticipated as a 
result of the release,” the agency said in a statement. “Company officials have told 
DEC that they are working with community members to clean up the areas and vehicles 
affected by soot.” It could not immediately be determined when the fire occurred. 
Source: http://www.buffalonews.com/city/communities/buffalo/article805970.ece 

For more stories, see items 38 and 63 



[ Return to top ] 



Defense Industrial Base Sector 



Nothing to report 



[ Return to top ] 

Banking and Finance Sector 

14. April 12, Help Net Security - (International) HSBC customers under phishing 
attack. Customers of HSBC, one of the largest banking and financial services 
organizations in the world, are being targeted with a fake warning of account 
suspension, Help Net Security reported April 12. The e-mail claims someone tried to 
access the user’s account and failed, and that the bank suspended the account to protect 
the customer. Unfortunately, the offered link takes the victims to a phishing site made 
to look like the bank’s legitimate Internet banking log-in page, where they are asked to 
input their user ID, name, date of birth, Social Security number, sort code, account 
number, and ATM PIN code to prove their identity. Once the information is submitted 
by pressing on the “Continue” button, it is immediately sent to the phishers and the 
victims are redirected to the bank’s legitimate page. 

Source: http://www.net-security.org/secworld.php ?id=12739&utm 
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15. April 12, Chicago Sun-Times - (Illinois; International) International crew busted 
looting Chicago ATMs with stolen info. Two suspects were busted earlier the week of 
April 9 after Chase Bank tipped police to suspicious activity at ATMs in the Chicago 
area. Authorities say they suspect the men are part of a Romanian financial-crime cell 
— one of a few dozen such cells looting ATMs in Chicago and draining customers’ 
bank accounts with an elaborate rip-off system. First, the crews steal personal banking 
information from ATM customers by secretly attaching a “skimmer” to ATM 
machines. The crews also hide a camera near the ATM to catch the customer keying in 
a password. Using that data, the crews create duplicate debit cards and “cash-out” guys 
fan out to ATMs to withdraw the maximum amount allowed on each card. Some of the 
alleged “cash-out” guys got nabbed April 9, police said. The men, who are Romanian, 
were charged with felony identity fraud. So far, 16 victims have been identified and 
$7,000 recovered from the men, prosecutors said. But sources said the theft total could 
reach $50,000 based on cash recovered from a vehicle the men were riding in. Sources 
said Chicago police officers seized more than 200 gift cards converted to debit cards. 
Source: http://www.suntimes.eom/news/metro/l 1 845470-41 8/international-crew- 
busted-looting-chicago-atms-with-stolen-account-information.html 

16. April 12, Financial Industry Regulatory Authority - (National) Goldman, Sachs & Co. 
fined $22 million for supervisory failures relating to trading and equity 
research. The Financial Industry Regulatory Authority (FINRA) announced April 12 
that it has fined Goldman, Sachs & Co. $22 million for failing to supervise equity 
research analyst communications with traders and clients and for failing to adequately 
monitor trading in advance of published research changes to detect and prevent 
possible information breaches by its research analysts. The U.S. Securities and 
Exchange Commission (SEC) also announced a related settlement with Goldman. 
Pursuant to the settlements, Goldman will pay $11 million each to FINRA and the 
SEC. In 2006, Goldman established a business process known as “trading huddles” to 
allow research analysts to meet on a weekly basis to share trading ideas with traders, 
who interfaced with clients, and, on occasion, equity salespersons. Analysts would also 
discuss specific securities during huddles while they were considering changing the 
published research rating or the conviction list status of the security. Clients were not 
restricted from participating directly in the trading huddles and had access to huddle 
data through research analysts’ calls to certain of the firm’s high priority clients. These 
calls included discussions of the analysts’ “most interesting and actionable ideas.” 
Trading huddles created the significant risk analysts would disclose material non-public 
information, including, among other things, previews of ratings changes or changes to 
conviction list status. Despite this risk, Goldman did not have adequate controls in 
place to monitor communications in trading huddles and by analysts after the huddles. 
Source: 

http://www.finra.org/Newsroom/NewsReleases/2012/P1259747utm source=feedbumer 
&utm medium=feed&utm campaign=Feed:+FINRANews+(FINRA+News)&utm con 
tent=Google+Reader 

17. April 12, U.S. Securities and Exchange Commission - (National) SEC charges Ponzi 
schemer targeting church congregations. The U.S. Securities and Exchange 
Commission (SEC) charged a man April 12 with running a Ponzi scheme that targeted 
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socially-conscious investors in church congregations nationwide. The SEC alleges the 
man made numerous false statements to lure investors into two investment programs 
being offered through City Capital Corporation, where he was the chief executive 
officer (CEO). The SEC also charged City Capital and its former chief operating 
officer. According to the complaint, the man cultivated an image of a highly successful 
and socially conscious entrepreneur and promoted investments through live 
presentations, Internet advertisements, and radio ads. The SEC alleges the CEO and 
City Capital offered two primary investments: promissory notes supposedly funding 
various small firms, and interests in “sweepstakes” machines. In addition to promising 
high rates of return, he assured investors he had a long track record of success and that 
funds would be used to support businesses in economically disadvantaged areas. A 
portion of profits were to go to charity. According to the complaint, more than $11 
million the CEO and City Capital raised from hundreds of investors nationwide from 
2008 to 2010 was instead used to operate a Ponzi scheme. Money was misused to pay 
other investors, finance personal expenses, and fund City Capital’s payroll, rent, and 
other costs. City Capital’s business ventures were unprofitable, and no meaningful 
amounts of investor money were ever sent to charities. 

Source: http://www.sec.gov/news/press/2012/2012-62.htm 

18. April 12, Reuters - (New York) Novelty grenade prompts bomb scare near New 
York’s ‘Ground Zero’. A novelty hand grenade briefly prompted the evacuation of 
one of the buildings near the site where New York City’s World Trade Center towers 
stood until they were brought down in the September 1 1th attacks, police said April 12. 
The evacuation of 2 World Financial Center in Manhattan was triggered around 1 1 a.m. 
after an X-ray of a package at the building appeared to reveal an explosive device 
inside, a New York City Police Department (NYPD) spokesman said. It was actually a 
novelty hand grenade on a plaque that read “complaint department, pull the pin” that 
had been sent to one of the tenants, Nomura Holdings, the NYPD spokesman said. 
Police have given the all-clear, allowing employees to return to the building, which 
houses a number of financial services firms. 

Source: http://www.reuters.com/article/2012/04/12/us-usa-newyork-wtc- 
idUSBRE83B 11020120412 



19. April 11, IDG News Service - (International) DDOS attacks on financial services 
firms explode. The financial services industry saw nearly triple the number of 
distributed denial-of-service (DDoS) attacks during the first 3 months of 2012 
compared to the same period in 201 1, according to a report released April 11. The new 
data comes from security vendor Prolexic, which counts 10 of the world’s major banks 
as clients for its DDoS mitigation services. In its report, the company said DDoS 
attacks also rose in intensity, with increases in bandwidth and packet-per-second rates. 
The average attack bandwidth rose from 5.2G bits per second (bps) in the last 3 months 
of 201 1 to 6. 1G bps in the first quarter of 2012. However, the average attack length 
dropped from 34 hours to 28.5 hours, Prolexic said. “The reduction in attack campaign 
duration, combined with an increase in mitigated bytes and packets, indicates that 
attackers are using shorter, stronger bursts of traffic to conduct DDoS campaigns,” the 
company said. More than 70 percent of the malicious attack traffic came from China. 
Source: 
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http://www.computerworld.eom/s/article/9226136/DDQS attacks on financial servic 
es firms explode 

20. April 11, Worthington Daily Globe - (Minnesota) Jackson woman faces 
embezzlement charge in U.S. district court. A former banker charged with allegedly 
embezzling more than $100,000 while employed as the retail operations manager at 
United Prairie Bank of Mankato, in Jackson, Minnesota, is scheduled to make her first 
appearance in federal court the week of April 16. Court documents state between 
January 2005 and August 2011, the former manager, with intent to defraud United 
Prairie Bank, willfully misapplied and embezzled the sum of approximately $108,039. 
She allegedly took funds from customer accounts for her personal use, and used some 
of the money to pay down a loan balance for a family member. Because bank deposits 
are insured by the Federal Deposit Insurance Corporation, the case will be handled 
through the federal court system. The court will pursue forfeiture of any property, real 
or personal, which was derived from proceeds traceable to the embezzled funds. 

Source: http://www.dolobe.com/event/article/id/56525/group/News/ 

21. April 11, Biloxi Sun Herald - (Mississippi; Louisiana; Texas) 2 women indicted in 
armed bank robbery in Gulfport. Court papers show a retired postal worker from 
Texas is accused of threatening to shoot a Gulfport, Mississippi bank teller in the face 
March 26 in what officials believe to be the last of a mother-daughter crime spree at 
four banks in three states, the Biloxi-Gulfport Sun Herald reported April 11. They were 
also being held on warrants from Texas and Louisiana. A state charge filed by Gulfport 
police alleged the mother wore a disguise when she robbed a Regions Bank bank at 
gunpoint with a demand note, and threatened to shoot a teller in the face if she didn’t 
give her money. She allegedly left the bank with $12,651 and fled in a getaway car 
driven by her daughter. The pair have been held since their arrests minutes after the 
holdup. The woman’s alleged disguise appears to fit a pattern in other robberies. The 
women are suspected in similar holdups February 13 at an Iberia Bank in Kinder, 
Louisiana, February 29 at a Citizens National Bank in Henderson, Texas, and March 15 
at a MidSouth Bank in Sulphur, Louisiana. 

Source: http://www.sunherald.eom/2012/04/l 1/3876702/2-women-indicted-in-armed- 
bank.html 



22. April 11, Federal Bureau of Investigation - (New York) Three mortgage loan officers 
plead guilty in Manhattan federal court to orchestrating $9 million mortgage 
fraud scheme. Three mortgage loan officers each pleaded guilty April 11 in New York 
City for their roles in a $9 million mortgage fraud scheme, a U.S. attorney announced. 
According to the indictment, the men along with nine other individuals, engaged in an 
illegal scheme to defraud various lending institutions by using fictitious and fraudulent 
“straw identities” to apply for mortgage loans. Through the scheme, the defendants 
were able to obtain more than $9 million in mortgage loans for the purchase of dozens 
of residential properties throughout the New York City metropolitan area and Long 
Island. Most of these loans quickly went into default. The men each acted as loan 
officers who processed the fraudulent mortgage applications. 

Source: http://www.fbi.gov/newvork/press-releases/2012/three-mortgage-loan-officers- 
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plead-guihv-in-manhattan-federal-court-to-orchestrating-9-million-mortgage-fraud- 

scheme 



For another story, see item 27 



[ Return to top ] 

Transportation Sector 

23. April 12, Washington Post - (Maryland) Ride On bus fires in Montgomery prompt 
federal safety probe. Navistar diesel vehicles purchased by Montgomery County’s 
Ride On buses in Maryland had problems with electrical panels and parking brakes that 
caused fires that destroyed five of them since 2009. The National Highway Traffic 
Safety Administration said April 1 1 it was looking into the buses to “determine if a 
safety defect exists in these vehicles.” The most recent fire happened in March and was 
still under investigation. Montgomery officials said they continue to operate the 45 
remaining Navistar buses as “infrequently as possible” for the Ride On service, which 
provides 26 million passenger trips a year. 

Source: http://www.washingtonpost.com/local/trafficandcommuting/ride-on-bus-fires- 
in-montgomerv-prompts-federal-safetv-probe/2012/04/ll/gIQAF2WgBT story.html 

24. April 11, Palm Springs Deseret Sun - (California) Oregon man arrested at Palm 
Springs airport with handgun. A Salem, Oregon man was arrested at Palm Springs 
International Airport in Palm Springs, California after Transportation Security 
Administration (TSA) officers found a loaded gun in his briefcase April 10. The man 
carried a .380-caliber Beretta handgun and 12 rounds of ammunition, a TSA 
spokesman stated. He was being held at a correctional facility in lieu of bail. He was 
scheduled to appear in county superior court April 12. 

Source: http://www.mvdesert.com/article/2012041 1/NEWS0801/204110324/Qregon- 
man-arrested-Palm-Springs-airport-handgun?odvssev=tabltopnewsltextlFrontpage 

25. April 11, Chicago Tribune - (Illinois) Man tries to board Greyhound bus with 
gun. A man was arrested after trying to board a Greyhound bus with a gun in Chicago, 
April 11. Bus station personnel became suspicious when they saw the man leave the 
station with a black leather bag after it was announced that passengers would be 
undergoing a security check. When they checked outside, they found the black bag and 
an unloaded handgun in a trash can. The man told police he had traveled to Chicago 
from Lansing, Michigan, and was switching buses on his way to California. 

Source: http://www.chicagotribune.com/news/local/breaking/chi-greyhound-passenger- 
arrested-for-having- gun-20 1 204 11,0,912349. story 

26. April 10, Bloomberg News; Aspen Times - (Colorado) Aspen flights diverted over 
FAA equipment failure. Several American Eagle flights headed to Aspen, Colorado, 
were diverted to other airports over the weekend of April 7 because of airport 
equipment failure. Investigators said the equipment that guides landing planes failed. 
The Federal Aviation Administration said it had problems after moving the equipment 
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and expected it to be fixed by April 13. 

Source: http://www.businessweek.com/ap/2012-04/D9U265TQ2.htm 



For more stories, see items 18, 60, and 63 



[ Return to top ] 

Postal and Shipping Sector 

27. April 12, Associated Press - (Texas) Man convicted of mail, ID theft in 

Houston. Prosecutors in Houston said April 1 1 that hundreds of people were scammed 
by a man who swiped mail and set up fake identities and a federal jury convicted a man 
of bank fraud, possession of stolen mail, and aggravated identity theft. Authorities said 
the Iranian national has been in custody since 2010 when investigators discovered 
stolen mail, fake credit cards, and cash in his Texas apartment. A dozen witnesses 
testified about stolen mail and bogus credit and bank accounts opened using their 
names. Investigators say about 500 people were affected by the scheme. 

Source: http://abclocal.go.com/ktrk/storv?section=news/local&id=86 17980 
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Agriculture and Food Sector 

28. April 12, Food Safety News - (National) Outbreak potentially linked to sushi 
expands to 116 cases. A multistate outbreak of Salmonella Bareilly that previously 
sickened 100 expanded to include at least 116 victims across 20 states, according to 
new data from the Centers for Disease Control and Prevention (CDC). In this latest 
outbreak report, released April 11, CDC reported, “The investigation has not 
conclusively identified a food source,” however evidence suggests sushi may be the 
contaminated product. Cases are largely centered in states on the Eastern Seaboard and 
the Gulf of Mexico, but also extend to the Midwest. The number of sickened 
individuals in each state is as follows: Alabama (2), Arkansas (1), Connecticut (5), 
District of Columbia (2), Florida (1), Georgia (5), Illinois (10), Louisiana (2), Maryland 
(11), Massachusetts (8), Mississippi (1), Missouri (2), New Jersey (7), New York (24), 
North Carolina (2), Pennsylvania (5), Rhode Island (5), South Carolina (3), Texas (3), 
Virginia (5), and Wisconsin (12). Among those infected, 12 are reported to have been 
hospitalized. Illnesses related to the outbreak were first reported January 28, and 
current case counts are accurate as of March 31. 

Source: http://www.foodsafetvnews.com/2012/04/more-victims-in-outbreak- 
potentially-linked-to-sushi/ 

29. April 12, Food Safety News - (Maine) E. coli tests spur recall of tenderized beef in 
Maine. Town and Country Foods of Greene, Maine, is recalling about 2,057 pounds of 
ground and mechanically tenderized beef that may be contaminated with E. coli 
0157:H7, the U.S. Department of Agriculture’s Food Safety and Inspection Service 
(FSIS) announced April 11. The company’s own lab testing confirmed a positive result 
for E. coli 0157:H7, according to the news release, but FSIS said the firm had already 
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distributed the beef before the test results were received. The potentially contaminated 
beef was produced between April 4 and 10 and shipped to wholesale and retail 
establishments in Maine. 

Source: http://www.foodsafetvnews.com/2012/Q4/e-coli-tests-spur-recall-of-tenderized- 
beef-in-maine/ 



30. April 12, Food Safety News - (California) California company will keep seafood off 
market. The U.S. Food and Drug Administration (FDA) said a California seafood 
importer and processor agreed to shut down its operations while it corrects conditions 
in its processing facility, which is alleged to be contaminated with Listeria 
monocytogenes. The FDA said in a statement April 11 that Yamaya USA of Torrance, 
and its president agreed to terms of a consent decree April 5. Under the agreement, the 
firm must destroy all foods being processed or ready for shipment, and clean and 
sanitize the facility. It cannot resume marketing its seafood until lab results confirm no 
further Listeria contamination. The FDA said the firm must also hire a sanitation and 
food safety expert to develop and implement a Listeria monitoring program and a 
hazard analysis critical control point plan. It must hire an outside auditor to conduct 
inspections of the facility at least once every 3 months for 3 years and once every year 
for 2 years after that, for a total of 5 years of auditing inspections. In October, 2011, 
Yamaha USA recalled capelin roe, or masago, after tests by the FDA revealed the roe 
was contaminated with Listeria. 

Source: http://www.foodsafetvnews.com/2012/04/california-companv-will-keep-fish- 
off-market/ 



31. April 12, Farmers Weekly - (International) Toxic chemical dioxin found in German 
eggs. Eggs from three farms in Germany were found to contain higher than permitted 
levels of the toxic chemical dioxin, the state’s agriculture ministry confirmed the week 
of April 2. Test results from an organic farm in the North Rhine Westphalia region of 
Ostwestfalen-Lippe, first found levels of dioxin in eggs up to six times over the limit in 
April. Dioxins are a group of chemical commonly formed as by-products from 
chemical processes and can have adverse effects on humans if they are consumed at 
high levels over long periods of time. Consumers were warned to avoid eggs from the 
farm, after it was reported that 7,000 eggs had already leaked into the food chain. Since 
then, the ministry said dioxin has been found at two other farms in the region and sales 
of affected eggs have now been halted. 

Source: http://www.fwi.co.uk/Articles/12/04/2012/132382/Toxic-chemical-dioxin- 
found-in-German-eggs .htm 

32. April 11, Associated Press - (Oregon; National) Study blames ocean C02 for oyster 
declines. Scientists are blaming slightly higher levels of carbon dioxide in Pacific 
Ocean waters linked to global warming for the failure of oyster larvae to survive in an 
Oregon hatchery, the Associated Press reported April 1 1 . They say higher acidity of the 
water that comes with more carbon dioxide makes it harder for young oysters to form 
shells, dooming them in days, even if they are moved to more favorable environments. 
“A lot of studies talk about the year 2050 when ocean acidification becomes a 
problem,” for sea life, said the lead author who is production manager at the Whiskey 
Creek Shellfish Hatchery on Netarts Bay. “It showed up five years ago for us,” and 
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almost put the hatchery out of business. The study appeared April 10 in the online 
edition of the journal Limnology and Oceanography. “The predicted rise of 
atmospheric C02 in the next two to three decades may push oyster larval growth past 
the break-even point in terms of production,” a study co-author said in a statement. 
Hatcheries and oyster farms relying on natural reproduction started having trouble with 
larvae survival in 2005. At Whiskey Creek, which raises larvae from Pacific and 
kumamoto oysters that originally come from Japan, they began noticing a correlation 
between times when ocean up welling was strong and larvae die-offs. 

Source: 

http://www.google.com/hostednews/ap/article/ALeqM5gDd4B8VqD01 OvXmPo- 
e 1 elna7M g?doc!d=8374f 8b5 7 0c94d5 89b99cf2 1 fbdb0446 

33. April 11, Occupational Health & Safety - (Illinois) Combustible dust explosion at 
pasta plant leads to $231K penalty. The U.S. Occupational Safety and Health 
Administration (OSHA ) cited Gilster-Mary Lee Corp. for six safety violations, 
including three willful, after two maintenance employees conducting welding 
operations sustained serious burns to their upper bodies as the result of an explosion 
within a dust collector at the company’s Steeleville, Illinois, pasta-manufacturing plant 
October 6, 2011. Proposed penalties total $231,000, Occupational Health & Safety 
reported April 11. During the incident, the two maintenance workers were repairing a 
hole in the side of a metal trough containing a screw conveyor that was leaking 
granulated sugar within several feet of an operational dust collector. The collector 
exploded due to a spark from the welding operations. The three willful violations 
include failing to: eliminate dust deflagration and explosion hazards on indoor dust 
collectors and air material separators; contain dust during the bagging of powdered 
sugar; shut down ducts and conveyor systems during welding operations; and ensure 
that electrical equipment installed in areas exposed to combustible dust was approved 
and safe for those locations. Three serious violations include failing to: inspect areas 
where welding was to be performed; prohibit welding in the presence of explosive 
atmospheres; and ensure the safe use of welding processes in the presence of 
combustible dust. Prior to this inspection, the food manufacturer was inspected by 
OSHA 30 times since 2002, resulting in citations for 46 violations. 

Source: http://ohsonline.com/articles/2012/04/ll/combustible-dust-explosion-at-pasta- 
plant-leads -to- 23 1 k-penalt y . aspx?admgarea=ne w s 

For more stories, see items 39 and 63 
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Water Sector 



34. April 12, Glendora Patch - (California) Report: High number of leaks in city water 
system. A city-commissioned report released April 10 found many leaks in Glendora, 
California’s water system compared to other cities of similar size. The research found 
16 leaks occurred monthly in the city’s aging water system, far more than surrounding 
local cities. The study also detailed budget, staffing, and workload issues within the 
city’s water division. While the research praised the water division’s overall 



- 13 - 



performance, it outlined specific problem areas, including constant leaks in the city’s 
70-year-old water infrastructure. According to the study adviser, the majority of leaks 
were found in the main lines. City officials have said leaks have cost the city thousands 
of dollars annually to repair. In 2003, the city entered into a capital improvement 
program to address more than $125 million worth of remaining water master plan 
improvements. The study also recommended the city consider an outside contractor to 
assist city staff in repairing leaks, especially in the event of a major disaster or multiple 
leaks. 

Source: http://glendora.patch.com/articles/report-high-number-of-leaks-in-citv-water- 
system 



35. April 11, WYFF 4 Greenville - (South Carolina) Raw sewage spill runs through 
neighborhoods. Up to 95,000 gallons of raw sewage spilled into a Greenville, South 
Carolina creek April 11, according to Renewable Water Resources (ReWa). The 
sewage overflowed into Brushy Creek due to a mistake by a contractor who was 
performing maintenance on a sewer line, according to a ReWa official. He said the 
overflow was corrected within 30 minutes and waste was filtered out of the water 
within a few hours, but it may take several days for bacteria levels in the creek to return 
to normal. The department of health and environmental control will determine when the 
water is safe again. People were advised to stay out of the stretch of Brushy Creek 
between Grove Road and Augusta Road. 

Source: http://www.wvff4.com/news/local-news/greenville-news/Raw-Sewage-Spill- 
Runs-Through-Neighborhoods/-/9654794/10584000/-/lncksxz/-/index.html 

36. April 11, Warren County Record - (Missouri) Marthasville imposes sewer 
moratorium. Marthasville, Missouri officials imposed a 180-day moratorium on 
connections to its sewer system, a response made after the effluent from the city lagoon 
exceeded its operating limits, the Warren County Record reported April 11. The city 
received a letter of warning from the Missouri Department of Natural Resources (DNR) 
March 12 notifying it that the monitoring period ended in January, and that the effluent 
limits, specifically ammonia limits, were reported at 4.97 milligrams per liter (mg/1), 
but its average monthly permit limitations are 2.8 mg/1. The letter noted the city was in 
violation of the Missouri Clean Water Law, and Clean Water Commission regulations. 
The city expected to receive two more warnings for high ammonia limits resulting from 
samples tested in February and March 2012. City officials said it was recommended by 
the DNR and the city attorney to impose the moratorium. 

Source: http://emissourian.com/news/warren county record/article 7e3532f4-83fa- 
1 Iel-9d80-001a4bcf887a.html 

37. April 11, KIVI 6 Boise - (Idaho) Garden City mayor declares water main to be a 
public safety emergency. The mayor of Garden City, Idaho, declared a state of 
emergency in the city, KIVI 6 Boise reported April 1 1 . A water main failed April 1, 
causing some residents to be without water. The city hoped to wait until river flows 
lowered, but according to the Idaho Statesman, the main has become a public safety 
hazard and the city cannot wait any longer. The new main is targeted to be complete at 
the end of June and will cost the city around $700,000. 

Source: http://www.kivitv.com/news/local/147031475.html 
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38. April 11, U.S. Environmental Protection Agency - (Colorado) Holcim (US), Inc. 
agrees to pay $36,500 penalty for Clean Water Act violations in Florence, 
Colorado. The U.S. Environmental Protection Agency (EPA) entered into a Combined 
Complaint and Consent Agreement (CCCA) with Holcim (US), Inc. in response to 
alleged violations of the Clean Water Act at its limestone and silica quarry and Portland 
cement plant located in Florence in Fremont County, Colorado. Announced in an April 
1 1 news release, EPA alleges Holcim had unauthorized ground water discharges at the 
facility, failed to comply with sampling requirements, failed to comply with inspection 
requirements, and failed to develop an adequate stormwater management plan for its 
operations, in violation of its permit and the Clean Water Act. As a result, Holcim 
agreed to pay a penalty of $36,500. 

Source: 

http://vosemite.epa.gOv/opa/admpress.nsf/0/45c5a9ab288be83b852579dd005ela8a7Qp 

enDocument 



For more stories, see items 4, 5, and 63 
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Public Health and Healthcare Sector 



39. April 12, Associated Press - (National) Animal antibiotics: FDA asks drug 

companies to limit overuse amid health concerns. April 11, the U.S. Food and Drug 
Administration (FDA) called on drug companies to help limit the use of antibiotics in 
farm animals, a decades-old practice that scientists say contributed to a surge in 
dangerous, drug-resistant bacteria. Antibiotic drugs like penicillin are routinely mixed 
with animal feed and water to help livestock, pigs, and chickens put on weight and stay 
healthy in crowded feeding lots. Scientists warned such use leads to the growth of 
antibiotic -resistant germs that can be passed on to humans. Under the new FDA 
guidelines, the agency recommends antibiotics be used “judiciously,” or only when 
necessary to keep animals healthy. It also wants to require a veterinarian to prescribe 
the drugs. They can currently be purchased over-the-counter by farmers. The draft 
recommendations by the FDA are not binding, and the agency is asking drug 
manufacturers’ to voluntarily put the proposed limits in place. Drug companies would 
need to adjust the labeling of their antibiotics to remove so-called production uses of 
the drugs. Production uses include increased weight gain and accelerated growth, which 
helps farmers save money by reducing feed costs. The FDA hopes drugmakers will 
phase out language promoting non-medical uses within 3 years. 

Source: http://www.huffingtonpost.eom/2012/04/l 1/animal-antibiotics-fda- 
livestock n 1417655.html?ref=food&ir=Food 



40. April 12, Louisville Courier-Journal - (Kentucky; National) Painkiller prescriptions 
grow nearly 200 percent since 1991. Painkiller abuse in the United States has 
exploded along with skyrocketing prescriptions and sales, top national health officials 
told a crowd of hundreds at the National Rx Drug Abuse Summit April 11. Even well- 
meaning doctors and dentists are fueling the epidemic of prescription drug abuse by 
prescribing narcotics too often and for too long, officials said. The director of the 
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National Institute on Drug Abuse at the National Institutes of Health cited statistics 
showing prescriptions for opiate-based painkillers dispensed by retail pharmacies rose 
from 76 million in 1991 to 219 million in 201 1. Kentucky is one of the hardest-hit 
states, with about 1,000 deaths a year attributed to prescription-drug overdoses — more 
deaths than in traffic accidents. The director said dentists and emergency medicine 
physicians were the chief prescribes of painkillers to patients 5 to 29 years old, and 
high prescribers should consider alternatives, particularly for this vulnerable group. She 
also said education on pain management is sorely lacking in medical schools, which 
offer an average of 7 hours, compared with 75 hours in U.S. veterinary schools. A 
principal deputy director at the U.S. Centers for Disease Control and Prevention said 
opioid overdose death rates have risen in lockstep with sales. In 2010, enough 
prescription painkillers were prescribed to medicate every American adult every day 
for a month. 

Source: http://www.courier- 

iournal.com/article/20 12041 l/NEWSOl/304110095/Painkiller-prescriptions-grow-n 
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Government Facilities Sector 



41. April 11, Associated Press - (Utah) Two students arrested for exploding chemical 
bombs at Utah high school. Police in Bountiful, Utah, arrested two teenagers, both 
high school students, for exploding chemical bombs in what authorities described as a 
prank. A Bountiful police sergeant said a plastic bottle filled with household chemicals 
and hydrochloric acid exploded in a stairwell at Bountiful High School, April 1 1. A 
second, similar bomb exploded in a nearby church parking lot. Police closed the school 
for 2 hours while searching for additional bombs. 

Source: http://www.suntimes.eom/news/nation/l 1 843028-4 1 8/two-students-arrested- 
for-exploding-chemical-bombs-at-utah-high-school.html 

42. April 11, CNN - (Pennsylvania) String of bomb threats reaches University of 
Pittsburgh chancellor. An April 10 bomb threat at the home of the University of 
Pittsburgh’s chancellor in Pittsburgh was followed by five other threats on university 
buildings early April 11, according to a school spokesman. A total of 55 buildings on 
the Pittsburgh campus have received dozens of threats since February 13. Some 
buildings have faced more than one threat. The Department of Justice, the FBI, and the 
University of Pittsburgh police are investigating. 

Source: http://www.cnn.com/2012/04/ll/us/pennsylvania-school- 
threats/index.html?hpt=us c2 

43. April 11, KNSD 7 San Diego - (California) UC Davis pepper spray. The University of 
California (UC) released a report on the pepper spraying of student demonstrators by 
UC Davis police during November 2011, KNSD 7 San Diego reported April 11. The 
200-page document concluded the incident “should and could have been prevented.” 
The report also said that the use of the pepper spray “does not appear to have been an 
objectively reasonable use of force.” The report is expected to shed light on the events 
that led campus police officers to coat protesters with pepper spray as 20 individuals sat 
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in a line. Two protesters were taken to the hospital. They were among 11 protesters 
treated for the effects of pepper spray. The task force planned to host a public meeting 
on the UC Davis campus to describe their findings and recommendations. The report 
can be found on the UC Davis Web site. 

Source: http://www.nbcsandiego.com/news/local/UC-Davis-Pepper-Sprav-Report- 
Going-Public- 14697 1 065 .html 

44. April 11, Cleveland Daily Banner - (Tennessee) Three LFMS students given court 
probation. Three students at Lake Forest Middle School in Cleveland, Tennessee 
pleaded guilty to reckless endangerment charges after manufacturing an explosive 
device and setting it off in their school’s cafeteria, the Cleveland Daily Banner reported 
April 11. They were placed on probation and given community service. The students 
manufactured the chemical device that exploded at the school the week of April 2. 
School resource officers began an investigation at the school after the soft drink bottle 
device exploded inside a trash can, causing a “loud boom and smoke.” 

Source: http://www.clevelandbanner.com/view/full story/18199479/article-Three- 
LFMS-students-given-court-probation?instance=homethirdleft 

45. April 11, Glendora Patch - (California) Rain damage shuts down phone lines on 
Citrus campus. A leak caused by a morning rainstorm damaged telephone wires on the 
Citrus College campus in Glendora, California, April 11. Phones were expected to 
remain inoperable throughout the day, according to a Citrus College representative. All 
classes were in session and offices were open. The college’s e-mail system, Web site, 
and Blackboard instructional course management system were operating. The extent of 
the damage was being assessed, the Citrus College director of communications said. 
“The college estimates that the phone system will be inoperable for the rest of [April 
11] and, possibly, longer,” she said. 

Source: http://glendora.patch.com/articles/rain-damages-phone-lines-on-citrus-campus 

46. April 10, Washington Post - (National) Commerce Department says cyber attack 
hasn’t stopped grants. The Commerce Department’s Economic Development 
Administration (EDA), which gives out grants to distressed communities, unplugged its 
network once a virus was discovered, and employees are now back online under a new 
operating system built from scratch, the Washington Post reported April 10. While 
business has slowed, Commerce officials stated, the EDA awarded $36.2 million in 
grants during the disruption. The virus’s source was not yet known. Commerce officials 
also said they were working aggressively to address longstanding warnings from the 
agency’s inspector general and the Government Accountability Office that its computer 
networks are vulnerable to cyber attacks. 

Source: http://www.washingtonpost.com/blogs/federal-eve/post/commerce-department- 
savs-cvber-attack-hasnt-stopped-grants/2012/04/10/gIQAkYM87S blog.html 
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Emergency Services Sector 



47. April 12, Batavia Daily News - (New York) Orleans will tackle $5 million radio 
upgrade. The Batavia Daily News reported April 12 that Orleans County, New York 
legislators are forging ahead with a $5 million emergency radio system upgrade. The 
project will include new telecommunications towers on the east and west ends of the 
county. Police officers, firefighters, and other first responders will have about 400 new 
radios, and the dispatch and telecommunications system will be overhauled. About 
1,100 other radios will be fine-tuned as part of the project. County officials have 
worked on the upgrade project since 2004. Police officers often are unable to 
communicate with each other or with dispatch because of the radios, putting officers in 
jeopardy, the Holley police chief said. The new system should be in place by the end of 
2012 or in early 2013, said the legislature chairman. 

Source: http ://thedailynewsonline.com/news/article a002c7 d6- 8452- 1 1 e 1 -ad 1 f- 
0019bb2963f4.html 



For more stories, see items 43 and 54 
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Information Technology Sector 

48. April 12, Help Net Security - (International) Trojanized Angry Birds offered for 
download. The extreme popularity of Rovio’s Angry Birds mobile game has made it 
and its special editions ideal for luring unsuspecting users into downloading malware. 

A trojanized version of the latest addition — Angry Birds Space — has recently 
recently been spotted by Sophos researchers being offered on a number of unofficial 
Android app stores. Users who download it may not even realize that they have 
downloaded a malicious app, as the packet appears to be a fully-functional version of 
the game, and the name and the icon of the app correspond with the ones used by the 
legitimate app. However, the bundled GingerBreak exploit works in the background to 
gain root access to the device and to use it to download and install additional malware 
from a remote Web site. The compromised device is then at the mercy of the criminals 
behind the malware and is now effectively part of a botnet. The criminals can force the 
device to download any additional packet they want or make the browser go to any 
Web page they choose. 

Source: http://www.net-security.org/malware news.php?id=2066&utm 

49. April 12, H Security - (International) Python updates for hash collison DoS 
problems. The Python developers released updates for Python 2.7 and 3.2 with 
changes that address several security issues. These include two fixes for hash collision 
problems which were brought into the spotlight at the Chaos Communications 
Congress (28C3) in December 2011. The flaw allows attackers to create key/value data 
crafted so the hashes for the keys are more likely to collide. This forces the system to 
spend much more time when creating key/value hash tables and can be used in a denial- 
of-service (DoS) attack. The issue is avoided by using a randomized hash function, 
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which has now been implemented in the four versions of currently supported Python. 
One fix corrects Python’s own hashing, while another fix corrects the same issue in the 
C-based Expat XML parsing library embedded in Python. An unrelated DoS issue in 
the Simple XML-RPC Server with Python, where excessive CPU could be consumed if 
requests were begun but the connection closed before the request body was completely 
sent, was also fixed. Finally, a countermeasure against the CBC IV attacks on SSL 3.0 
and TLS 1.0 which was incorporated into OpenSSL was turned back on in Python, after 
it was found the coders inadvertently disabled the countermeasure when setting 
options. 

Source: http://www.h-online.com/security/news/item/Python-updates-for-hash- 
collison-DoS-problems-1519585.html 

50. April 12, Help Net Security - (International) 0-day in Backtrack Linux found, 
patched. A zero-day vulnerability affecting the last version of Backtrack Linux was 
spotted by a student during an Ethical Hacking class organized by the InfoSec Institute. 
The discovery was made public on InfoSec’s Web site and detailed by the student 
himself, who said the Wireless Interface Connection Daemon (WICD) Backtrack 
components has several design flaws that can be misused to execute a privilege 
escalation exploit. “Improper sanitization of the inputs in the WICD’s DBUS interfaces 
allows an attacker to (semi)arbitrarily write configuration options in WICD’s ‘wireless- 
settings. conf’ file, including but not limited to defining scripts (executables actually) to 
execute upon various internal events (for instance upon connecting to a wireless 
network),” he explained. “These scripts execute as the root user, this leads to arbitrary 
code/command execution by an attacker with access to the WICD DBUS interface as 
the root user.” The student and the InfoSec team immediately started on working on a 
proof-of-concept exploit and the patch for the vulnerability, all of which is provided on 
the group’s site. Backtrack is a Linux distribution popular with penetration testers all 
over the world because it comes preloaded with hundreds of useful security tools. The 
vulnerability affects the latest version — Backtrack 5 R2. Users can use the patch 
offered by the group or update WICD to the new version (1.7.2) which fixes the 
vulnerability. 

Source: http://www.net-securitv.org/secworld.php?id=12740&utm 

51. April 12, H Security - (International) Security vulnerability in NVIDIA’s 
proprietary Linux drivers fixed. A new version of NVIDIA’s proprietary UNIX 
graphics drivers for Linux, Solaris, and FreeBSD fixes a security vulnerability (CVE- 
2012-0946) that allowed attackers to read and write arbitrary system memory in order 
to, for example, obtain root privileges. To take advantage of the vulnerability, an 
attacker must have access permission for some device files — which, for systems with 
these drivers, is typically the case for users who can launch a graphical interface as 3D 
acceleration and some other features cannot be used otherwise. Version 295.40 of the 
driver corrects this problem. For older drivers whose version numbers start with 195, 
256 to 285, or 290 to 295, NVIDIA made patches available that change the vulnerable 
part of the kernel module belonging to the driver. Users who update the driver with this 
patch and use the CUDA debugger will also need to update the CUDA library before 
the debugger can work again. NVIDIA categorized the security hole as “high risk” and 
recommends users update to the new version if they use the drivers with GeForce 8, 
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G80 Quadro graphics cards, or newer models from those lines. The company has not 
confirmed whether the problem also exists for older graphics card models or legacy 
drivers (such as the 173 line). 

Source: http://www.h-online.com/security/news/item/Securitv-vulnerabilitv-in- 
NVIDIA-s-proprietary-Linux-drivers-fixed- 1520095 .html 

52. April 10, Help Net Security - (International) Fake account verification email phishes 
for Google credentials. Google users are being targeted with e-mails purportedly 
coming from the Google Team confirming a bogus recovery e-mail update. Hosted on a 
compromised Web site, the destination is a page made to look like Gmail’s login page, 
set up to harvest the users’ login credentials for their Gmail, and consequently, for all 
their other Google accounts. 

Source: http://www.net-securitv.org/secworld.php?id= 12725 
For more stories, see items 14, 19, and 46 

Internet Alert Dashboard 



To report cyber infrastructure incidents or to request information, please contact US-CERT at sos@us-cert.gov or 
visit their Web site: http://www.us-cert.gov 

Information on IT information sharing and analysis can be found at the IT ISAC (Information Sharing and 
Analysis Center) Web site: https://www.it-isac.org 
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Communications Sector 



53. April 11, KTVM 6 Butte - (Montana) Update on KTVM technical issues. KTVM 6 
Butte, Montana, updated its viewers April 11 on some of the technical problems the 
station had been experiencing with its on-air signal. Several major power outages took 
the Green Mountain transmitters off the air. The transmitter was damaged, and the 
station has been working to repair it over the last few weeks. It has now been repaired 
and KTVM was back up to normal operations as of April 11. 

Source: http://www.nbcmontana.com/news/30876718/detail.html 

54. April 11, Portland Oregonian - (Oregon) Phone service out for almost 1,000 in 
Washington County. A telephone outage April 11 left 990 phone lines in Washington 
County, Oregon, without service. The carrier, Frontier Communications, was working 
to restore service. The cause of the outage was equipment failure, said a spokesman for 
the Washington County Consolidated Communications Agency. He said those without 
service who needed to call 9-1-1 were advised to use a wireless phone. As of the 
afternoon of April 11, there was no word on what time service would be restored. 
Source: 

http://www.oregonlive.com/aloha/index.ssf/2012/04/phone service out for almost 1. 
html 
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Commercial Facilities Sector 



55. April 12, WHNS 21 Greenville - (South Carolina) Massive Anderson blaze ruled 
accidental. Dozens of people were displaced April 1 1 when a massive fire destroyed 
an Anderson, South Carolina apartment building. About 50 firefighters were called to 
the building and were able to get the fire under control in about 10 minutes, according 
to the Anderson County fire chief. He said firefighters remained at the scene to monitor 
hot spots. The fire chief said they ruled it an undetermined, accidental fire. One 
firefighter was taken to a local hospital after falling, and a bystander was treated for 
breathing problems. 

Source: http://www.foxcarolina.com/storv/17386774/massive-fire-destroys-anderson- 
apartment-building 

56. April 12, Connecticut Post - (Connecticut) Chemical leak forces evacuation. A 
choloride-based chemical was released from a Fairfield, Connecticut metals processing 
company April 12, forcing an evacuation and closing several roads. A B.J.s Warehouse 
store, several surrounding businesses, and homes were evacuated. Black Rock Turnpike 
and Commerce Drive were closed to traffic and pedestrians. However, less than an hour 
later the fumes were not considered toxic because of the small amounts released. The 
fumes were released from 5NPlus, a custom manufacturer of metals. An assistant fire 
chief identified the chemical as gallium trichloride. 

Source: http://www.ctpost.com/policereports/article/Chemical-leak-forces-evacuation- 
3477382.php 

57. April 11, Knoxville News Sentinel - (Tennessee) Officials dousing English Mountain 
fire with water from helicopter. A fire atop English Mountain, in Sevierville, 
Tennessee, which started April 10 and destroyed four dozen condominiums was being 
fought with a helicopter ferrying loads of water from local ponds and lakes. As of April 
1 1, 48 condos reduced to ashes in Sevier County continued to smolder due to hot 
embers under the debris. Firefighters also remained on scene in the event anticipated 
would kick up remaining embers and turn them into flames. The fire appeared to be 
spreading northeast into Cocke County, a public information officer for the Sevierville 
Police Department said, but no homes were in imminent danger. 

Source: http://www.knoxnews.com/news/2012/apr/ll/officials-dousing-english- 
mountain-fire-with/ 



58. April 11, WRWR 38 Warner Robins - (Georgia) 44 guns stolen from Sports Center in 
Perry. Police in Perry, Georgia, reported more than 40 guns were stolen from a 
sporting goods store April 9. Approximately 44 weapons, 36 of them pistols, were 
stolen from the Sports Center store by what appeared to be a team of criminals. The 
thieves broke through the store windows then used a heavy instrument to break through 
the bulletproof casing that housed the weapons. 

Source: http://warnerrobinspatriot.com/bookmark/18190955-44-guns-stolen-from- 
Sports-Center-in-Perry#ixzz 1 rpntrat4 

59. April 11, WAFF 48 Huntsville - (Alabama) Arab Police make church building arson 
arrest. Arab, Alabama police made an arrest in an Alabama church fire case, WAFF 48 



-21 - 



Huntsville reported April 11. Investigators said a man was accused of breaking into the 
youth ministry building of the Victory Cornerstone Church, vandalizing it and then 
setting it on fire. The suspect was charged with second degree arson, third degree 
burglary, and first degree criminal mischief. 

Source: http://www.wsfa.com/story/17384982/arab-police-make-church-building- 
arson-arrest 
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60. April 12, Newark Star-Ledger - (New Jersey) Fast-moving brush fire destroys 100 
acres near Meadowlands sports complex. Treacherous ground and fast-moving 
flames kept crews from directly fighting a large grass fire near the Izod Center, a multi- 
purpose arena in East Rutherford, New Jersey, April 11. At times, the fire jumped 20 
feet into the air and spread out a quarter-mile near Paterson Plank Road in Carlstadt and 
the western spur of the New Jersey Turnpike. At one point, state officials closed the 
western spur of the Turnpike for 45 minutes amid concerns that flames would endanger 
motorists. The fire was one of more than 165 fires reported across the Garden State in 
the past 1 1 days, burning nearly 2,000 acres of land, said the acting chief of the New 
Jersey Forest Fire Service. 

Source: http://www.ni.com/news/index.ssf/201 2/04/fast- 
moving brush fire destroy.html#incart hbx 

61 .April 11, Gainesville Sun - (Florida; Georgia) Update on the County Line Fire - 
exceeds 25,000 acres, more smoke in forecast. The County Fine fire, primarily in the 
northeast corner of the Osceola National Forest in Florida, ignited the week of April 2 
and spread through more than 30,000 acres of pine, swamp, brush, and palmetto that 
has been parched by months of drought. Crews were battling the fire April 11, which 
spanned Columbia and Baker counties and was responsible for smoke drifting as far 
south as Gainesville. Residents from Georgia through North Florida from the Atlantic 
Ocean to the Gulf of Mexico are inhaling the caustic smoke — a potential danger to 
people with respiratory ailments. 

Source: 

http://www.gainesville.com/article/20120411/ARTICFES/120419931/1002/news7Title 

=Fire-consumes-30-000-acres-blankets-area-with-smoke- 



T Return to top i 



Dams Sector 



62. April 11, New Orleans Times-Picayune - (Fouisiana) Inspections of lower Mississippi 
River levees deactivated. The U.S. Army Corps of Engineers halted emergency 
inspections of levees along the lower Mississippi River April 1 1, as water levels at New 
Orleans dropped below 1 1 feet, the trigger for the first phase of the agency’s flood 
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fighting program. The decision also means that permitted construction work near levees 
and floodwalls along or near the river would resume. The Corps activated the phase 1 
flood fight March 27, when the river rose above 11 feet in New Orleans. 

Source: 

http://www.nola.com/environment/index.ssf/2012/04/inspections of lower mississip.h 
tml 

63. April 11, Delaware First Media - (Delaware) Rising seas to cut Delaware land mass 
by 10 percent, report says. A draft of the Delaware Department of Natural Resources 
and Environmental Control (DNREC) Coastal Programs vulnerability study was 
released to the sea level rise committee, Delaware First Media reported April 11. The 
study claims 10 percent or more of Delaware’s land mass could be submerged by rising 
ocean waters by the end of the century. In addition, more than 60 percent of dams, 
dikes, and levees could be inundated; sections of railroad flooded out; some roads, and 
bridges made impassable; and up to a fifth of wastewater treatment plants knocked out 
as an anticipated 1 -meter rise in sea level spreads across the low-lying state. Dams, 
railroad lines, heavy industrial areas, tidal wetlands, and the Port of Wilmington are 
among the highest areas of concern, while residences are of moderate concern, and 
factories and farmland are rated as areas of low concern. In Delaware, the sea level is 
rising twice as fast as the global rate because movement in the earth’s crust means the 
state’s land is sinking at the same time. Tide gauges at Lewes show waters rising by 
0.13 inch a year, or 13 inches over 100 years. The new report bases its vulnerability 
assessment on three scenarios: that seas will rise by 0.5 meter, 1 meter, or 1.5 meters by 
2100. The study deals only with vulnerability to sea-level rise; the response to the 
problem is due in a later study on how the state might adapt to the rising waters. 
Officials hope to publish initial recommendations on adaptation this fall while the 
report is expected to be released to the public during summer 2012. 

Source: http://www.delawarefirst.org/25303-rising-seas-cut-delaware-land-ten-percent 
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